$ rpki-client -vvf repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3137322e302f32342d3234203d3e2039333431.roa File: 3131392e3235322e3137322e302f32342d3234203d3e2039333431.roa (raw, json) Hash identifier: 1ibSwO1cF522aIsnG6Z/E2j+N6YLmVlyUL8T1QfGEpM= Subject key identifier: BF:19:B8:B2:79:94:2A:6E:0A:7E:A7:4F:23:D4:D8:15:B7:52:07:20 Certificate issuer: /CN=61566F205F7037962069571320603B274357CC6D Certificate serial: 241F066FFEDFF5DBC0B573F42E12A0EEF3E15166 Authority key identifier: 61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3137322e302f32342d3234203d3e2039333431.roa Signing time: Sun 22 Feb 2026 07:00:02 +0000 ROA not before: Sun 22 Feb 2026 06:55:02 +0000 ROA not after: Sun 21 Feb 2027 07:00:02 +0000 asID: 9341 IP address blocks: 119.252.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Mar 2026 02:10:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1f:06:6f:fe:df:f5:db:c0:b5:73:f4:2e:12:a0:ee:f3:e1:51:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61566F205F7037962069571320603B274357CC6D Validity Not Before: Feb 22 06:55:02 2026 GMT Not After : Feb 21 07:00:02 2027 GMT Subject: CN=BF19B8B279942A6E0A7EA74F23D4D815B7520720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4f:72:29:d4:89:8b:d5:e6:af:a4:d1:7d:d3: 17:fd:e6:7c:1d:41:96:e5:69:89:1b:46:11:8d:a7: 6e:b5:ca:9d:a3:58:d4:ff:b2:64:04:ab:92:13:59: 95:22:ca:df:a7:74:34:0a:23:2c:d8:34:fd:21:82: 5d:af:32:fc:0c:b4:a6:36:6d:57:af:9b:33:9b:a8: a8:06:d7:16:20:a7:38:fe:df:fe:90:ac:d9:e7:e0: bc:b6:b1:f9:4d:17:83:c6:32:73:a5:9e:1a:26:47: a7:82:b6:09:60:d4:54:ff:7f:73:db:52:24:17:ea: c7:0c:ac:af:81:fc:e1:dd:01:75:11:95:82:42:0d: c2:11:45:88:6d:3f:70:8b:e1:fe:e3:1c:fb:ad:25: 9a:bd:5d:87:8a:cf:51:bc:85:79:bb:d5:07:30:84: a6:bf:6c:c1:49:b1:b0:e7:57:22:5f:b1:2e:06:ba: 1a:60:37:5e:96:d3:f6:1d:e4:f1:bd:00:39:9c:5d: 82:48:1e:79:a2:be:23:7f:f6:b8:2d:9c:dd:0d:6a: 7a:d1:3e:21:da:d0:ff:1f:9c:60:a8:d1:d8:0d:16: 4f:46:af:58:e8:42:a0:c3:0b:1d:76:77:dd:71:19: 44:d4:39:4f:94:c8:de:61:bc:31:05:fc:d5:d0:7c: 5e:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:19:B8:B2:79:94:2A:6E:0A:7E:A7:4F:23:D4:D8:15:B7:52:07:20 X509v3 Authority Key Identifier: keyid:61:56:6F:20:5F:70:37:96:20:69:57:13:20:60:3B:27:43:57:CC:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/61566F205F7037962069571320603B274357CC6D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/61566F205F7037962069571320603B274357CC6D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/73bdcbae-2e9d-4f3f-8ab9-3424e448484e/0/3131392e3235322e3137322e302f32342d3234203d3e2039333431.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.252.172.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:1b:92:c1:ed:5e:e2:14:ac:93:eb:6e:3c:91:73:2c:6a:cf: 12:88:47:8a:44:8b:2f:04:7b:ea:e8:75:39:88:bd:67:fe:9e: 31:9b:b4:4e:06:a5:3b:ec:3c:8b:ad:69:ae:b1:58:19:71:fe: f7:15:7e:03:b7:7d:b3:e6:d2:bd:76:d5:37:9c:d1:14:0d:ca: f8:6c:bd:8c:b3:8a:5e:54:a1:b0:83:2c:e2:65:ca:be:0f:52: cc:87:74:7f:c8:bf:d0:d9:cb:d9:e6:73:e5:c3:97:ae:c1:27: 68:fe:6a:e4:2f:b1:a2:8c:bc:73:a6:a3:ba:45:2b:a5:f3:16: 80:d6:ac:f9:b4:c4:ed:1f:7d:99:30:70:ae:de:bc:2c:21:51: a8:db:53:d0:d8:a3:80:e2:69:9c:fa:a3:51:61:7c:f3:3c:18: 28:dc:55:51:a2:87:12:92:4b:9e:01:43:bb:91:cc:c2:c3:34: 0d:37:1b:69:2f:8d:50:ac:f5:c9:3d:5f:e1:ae:57:f9:00:bb: 07:00:c0:7a:b5:54:fd:32:1a:87:9c:93:d2:9d:57:d0:d2:cb: 58:f7:77:06:de:52:d6:a8:16:61:6b:cb:46:67:60:38:80:c6: 64:b1:a9:04:a8:87:48:b4:84:3e:23:c1:cd:ae:ed:fb:0b:30: f8:b2:bd:31 -----BEGIN CERTIFICATE----- MIIFKDCCBBCgAwIBAgIUJB8Gb/7f9dvAtXP0LhKg7vPhUWYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0 MzU3Q0M2RDAeFw0yNjAyMjIwNjU1MDJaFw0yNzAyMjEwNzAwMDJaMDMxMTAvBgNV BAMTKEJGMTlCOEIyNzk5NDJBNkUwQTdFQTc0RjIzRDREODE1Qjc1MjA3MjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvT3Ip1ImL1eavpNF90xf95nwd QZblaYkbRhGNp261yp2jWNT/smQEq5ITWZUiyt+ndDQKIyzYNP0hgl2vMvwMtKY2 bVevmzObqKgG1xYgpzj+3/6QrNnn4Ly2sflNF4PGMnOlnhomR6eCtglg1FT/f3Pb UiQX6scMrK+B/OHdAXURlYJCDcIRRYhtP3CL4f7jHPutJZq9XYeKz1G8hXm71Qcw hKa/bMFJsbDnVyJfsS4GuhpgN16W0/Yd5PG9ADmcXYJIHnmiviN/9rgtnN0NanrR PiHa0P8fnGCo0dgNFk9Gr1joQqDDCx12d91xGUTUOU+UyN5hvDEF/NXQfF7NAgMB AAGjggIyMIICLjAdBgNVHQ4EFgQUvxm4snmUKm4KfqdPI9TYFbdSByAwHwYDVR0j BBgwFoAUYVZvIF9wN5YgaVcTIGA7J0NXzG0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 M2JkY2JhZS0yZTlkLTRmM2YtOGFiOS0zNDI0ZTQ0ODQ4NGUvMC82MTU2NkYyMDVG NzAzNzk2MjA2OTU3MTMyMDYwM0IyNzQzNTdDQzZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjE1NjZGMjA1RjcwMzc5NjIwNjk1NzEzMjA2MDNCMjc0MzU3 Q0M2RC5jZXIwgaIGCCsGAQUFBwELBIGVMIGSMIGPBggrBgEFBQcwC4aBgnJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczYmRjYmFlLTJlOWQtNGYzZi04 YWI5LTM0MjRlNDQ4NDg0ZS8wLzMxMzEzOTJlMzIzNTMyMmUzMTM3MzIyZTMwMmYz MjM0MmQzMjM0MjAzZDNlMjAzOTMzMzQzMS5yb2EwGAYDVR0gAQH/BA4wDDAKBggr BgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHf8rDANBgkqhkiG 9w0BAQsFAAOCAQEATxuSwe1e4hSsk+tuPJFzLGrPEohHikSLLwR76uh1OYi9Z/6e MZu0TgalO+w8i61prrFYGXH+9xV+A7d9s+bSvXbVN5zRFA3K+Gy9jLOKXlShsIMs 4mXKvg9SzId0f8i/0NnL2eZz5cOXrsEnaP5q5C+xooy8c6ajukUrpfMWgNas+bTE 7R99mTBwrt68LCFRqNtT0NijgOJpnPqjUWF88zwYKNxVUaKHEpJLngFDu5HMwsM0 DTcbaS+NUKz1yT1f4a5X+QC7BwDAerVU/TIah5yT0p1X0NLLWPd3Bt5S1qgWYWvL RmdgOIDGZLGpBKiHSLSEPiPBza7t+wsw+LK9MQ== -----END CERTIFICATE-----Generated at Mon Mar 2 09:32:36 2026 by rpki-client